Which of the following actions is performed by dynamic NAT? (Select the best answer.)

Last Updated on August 4, 2021 by Admin 3

Which of the following actions is performed by dynamic NAT? (Select the best answer.)

  • mapping an inside local IP address to a specific global IP address
  • mapping an inside local IP address to a global IP address chosen from a pool
  • mapping an inside local IP address and port to a global IP address with a specific port
  • mapping an inside local IP address and port to a global IP address with a randomly selected port
Explanation:
Dynamic Network Address Translation (NAT) maps an inside local IP address to a global IP address chosen from a pool. This is often done to enable inside hosts with private, nonroutable IP addresses to use a globally routable IP address so that the inside hosts can communicate over the Internet. The following exhibit shows an example of dynamic NAT:

300-735 Part 11 Q10 108
300-735 Part 11 Q10 108

Static NAT maps an inside local IP address to a specific global IP address. This is often used to enable outside hosts to connect to a device on the inside network, such as a web server, when port translation is not required. The following exhibit shows an example of static NAT:

300-735 Part 11 Q10 109
300-735 Part 11 Q10 109

Static Port Address Translation (PAT), which is also called port forwarding, maps an inside local IP address and port to a global IP address with a specific port. This is often used to enable outside hosts to connect to a specific service on a device located on the inside network, such as a web server. The following exhibit shows an example of static PAT:

300-735 Part 11 Q10 110
300-735 Part 11 Q10 110

Dynamic PAT, which is also called NAT overloading, maps an inside local IP address and port to a global IP address with a randomly selected port. This is often done to enable multiple inside hosts with private, nonroutable IP addresses to share a single globally routable IP address so that the inside hosts can communicate over the Internet. The PAT router keeps track of each inside host by assigning a random port number to the client for the duration of the communication.
However, dynamic PAT is capable of mapping internal source addresses to more than one routable IP address. Some security appliances could mistake a large number of packets from a single IP address as a DoS attack attempt. Therefore, dynamic PAT supports the use of roundrobin to enable internal IP source addresses to map to more than just one routable IP source address. By using dynamic PAT’s roundrobin assignment of IP addresses, the risk of misidentification of large amounts of traffic as a DoS attack can be mitigated.
The following exhibit shows an example of dynamic PAT:

300-735 Part 11 Q10 111
300-735 Part 11 Q10 111
0 0 votes
Article Rating
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments